Lenovo recommends removing accelerator application for insecure update mechanism

https://support.lenovo.com/us/en/product_security/len_6718

https://duo.com/blog/out-of-box-exploitation-a-security-analysis-of-oem-updaters

Potential Impact: Remote code execution by an attacker with local network access
Severity: High
Scope of Impact: Lenovo products described below

Summary Description:
A vulnerability was identified in the Lenovo Accelerator Application software which could lead to exploitation by an attacker with man-in-the-middle capabilities. The vulnerability resides within the update mechanism where a Lenovo server is queried to identify if application updates are available.

The Lenovo Accelerator Application is used to speed up the launch of Lenovo applications and was installed in some notebook and desktop systems preloaded with the Windows 10 operating system.

Mitigation Strategy for Customers (what you should do to protect yourself):
Lenovo recommends customers uninstall Lenovo Accelerator Application by going to the “Apps and Features” application in Windows 10, selecting Lenovo Accelerator Application and clicking on “Uninstall”.

Product Impact:
The Lenovo Accelerator Application was installed on some consumer notebook and desktop systems preloaded with the Windows 10 operating system.
The Lenovo Accelerator Application was never installed on ThinkPad or ThinkStation devices.​